Cybersecurity Articles

370/68 Monday, September 29, 2025 Researchers from Forcepoint X-Labs have issued a warning about a new email campaign that uses fake invoices as lures to distribute the XWorm RAT (Remote Access Trojan). This malware allows attackers to remotely control infected machines and steal sensitive user data. The phishing emails are sent with the subject line […]

369/68 Monday, September 29, 2025 Cybersecurity experts have discovered an attack in which hackers used SEO poisoning and search engine ads to promote fraudulent websites offering downloads of Microsoft Teams. Once installed, the victim’s computer becomes infected with the Oyster malware, providing attackers with an initial foothold into the organization’s network. The Oyster malware-also known […]

368/68 Friday, September 26, 2025 KNP Logistics Group (formerly Knights of Old), a historic UK transport company with a legacy of over 158 years, was forced to shut down in June 2025 after falling victim to the Akira ransomware gang. The attackers gained access to the company’s systems through a single weak employee password, without […]

367/68 Friday, September 26, 2025 Italian company Libraesva, developer of the Email Security Gateway (ESG) solution, has issued a security advisory regarding vulnerability CVE-2025-59689, which has been actively exploited by nation-state hackers through specially crafted compressed email attachments. The flaw allows attackers to execute command injection on the system under a non-privileged user account. The […]

366/68 Friday, September 26, 2025 The Python Software Foundation (PSF) has issued a warning about a new phishing campaign targeting Python developers and project maintainers. Threat actors have created fake websites impersonating the Python Package Index (PyPI) – the official repository for Python packages – tricking users into verifying their account credentials under the guise […]

365/68 Thursday, September 25, 2025 Security researchers have warned that the Operation Rewrite campaign is deploying BadIIS malware to conduct SEO poisoning attacks, targeting East Asia and Southeast Asia, particularly Vietnam. The goal is to manipulate search engine rankings, tricking users into visiting compromised websites that then redirect them to spam sites or unwanted content […]

364/68 Thursday, September 25, 2025 SolarWinds has released a hotfix to address a critical vulnerability tracked as CVE-2025-26399 (CVSS 9.8) affecting Web Help Desk. If successfully exploited, the flaw could allow attackers to perform remote code execution (RCE) on affected servers. The vulnerability stems from the deserialization of untrusted data within the AjaxProxy module and […]

363/68 Thursday, September 25, 2025 The U.S. Secret Service announced on Tuesday that it had seized a network of illegal electronic devices deployed across the New York area, which had been used to threaten U.S. government officials and posed a serious national security risk. The operation resulted in the confiscation of over 300 SIM servers […]

362/68 Wednesday, September 24, 2025 The Steam gaming platform has once again become a vector for cyberattacks after it was discovered that the verified game BlockBlasters was secretly embedding cryptodrainer malware designed to steal digital assets. Attackers employed a strategy of releasing what appeared to be a safe game with positive reviews at first, only […]

361/68 Wednesday, September 24, 2025 Cybersecurity firm Silent Push has revealed the discovery of a new malware strain named CountLoader, deployed by Russian cybercriminal groups linked to LockBit, BlackBasta, and Qilin. CountLoader functions as a malware loader, a program designed to serve as an initial access point for installing other types of malware – including […]